Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Staff Product Security Engineer

$165k - $185k
Full-time

Greenlight Financial Technology

Role Description

We are seeking an experienced and motivated Staff Product Security Engineer to join our growing Security team. This individual will be responsible for the end-to-end security of our consumer products, digital platform, and an emerging hardware device line. The Staff Product Security Engineer will:

  • Drive security review, threat modeling programs, lead penetration testing, manage PSIRT operations, champion secure AI adoption, and establish security guardrails for AI-powered products and AI-assisted development workflows within a highly regulated financial services environment.
  • Report to the Senior Manager of Product Security.

Your day-to-day:

  • Lead security architecture/design review and threat modeling sessions with product and engineering teams using STRIDE, PASTA, and attack tree methodologies.
  • Translate threats into actionable, risk-rated engineering remediations prioritized by severity.
  • Conduct hands-on penetration testing and security assessments across our full product stack producing actionable reports for engineering and leadership.
  • Red-Team our AI-powered products and development tools to test for prompt injection, data exfiltration, MCP server exploitation, and tool misuse.
  • Probe AI guardrails to ensure they hold.
  • Experience with product security tools such as Burp Suite, Metasploit, Kali Linux, Postman, etc.
  • Drive PSIRT Operations by triaging incoming vulnerability reports, leading technical investigations, coordinating remediation with engineering, scoring severity (CVSS), managing coordinated disclosure with external researchers and on-call incidents.
  • Manage zero-day findings, driving remediation, collaborating with engineering to patch or mitigate with compensating controls.
  • Shape the posture of our AI-assisted development environment defining and enforcing enterprise policies for Claude and Cursor.
  • Partner across the organization, sitting in design review with architects, advising product managers and engineering teams on security and compliance implications of new features.
  • Brief executives on emerging AI threats, mentor junior security engineers, and collaborate with the AI team on securing ML pipelines.
  • Champion Security Culture by running developer training on secure coding with AI assistants, evangelizing security by design for products, and ensuring every engineer understands that product security is an enabler and not a gate.

Qualifications

  • 10+ years of product security experience spanning application security, cloud security, and secure SDLC.
  • Expert level Threat Modeling using STRIDE, PASTA or equivalent across web, mobile, cloud, embedded, and AI systems.
  • Hands-on penetration testing skills across applications, API, cloud infrastructure, and hardware/firmware.
  • PSIRT operational experience from vulnerability intake and triage.
  • Deep hands-on AI security expertise and expert level understanding of OWASP Top 10 for LLM, API, Web, Mobile.
  • Strong hands-on experience in security tools SAST, DAST, SCA, and securing AI development tools specifically Claude and Cursor.
  • Strong programming ability and capability to review code, build security tools, automate workflows.
  • Deep technical knowledge of CI/CD pipeline and relevant tools for web and mobile applications.
  • Strong knowledge of programming languages & frameworks (i.e. Node.js, Java/Kotlin, React, Redux, Swift, SwiftUI), cloud technologies and infrastructure (i.e. AWS, GCP, Kubernetes, Ambassador, Helm), and databases (i.e. MySQL, DynamoDB, Redis).
  • Ability to influence without authority, mentor without managing, and communicate complex risks in a language that resonates with engineers, product managers, legal and compliance, and executives alike.

Requirements

  • Hardware and embedded security experience with knowledge of secure boot, firmware integrity, hardware root of trust, and IoT threat modeling experience.
  • Experience in the Financial industry, knowledge of PCI DSS, COPPA or demonstrated ability to learn regulated domains quickly.

Benefits

  • Medical, dental, vision, and HSA match.
  • Paid life insurance, AD&D, and disability benefits.
  • Traditional 401k with company match.
  • Unlimited PTO.
  • Paid company holidays and pop-up bonus holidays.
  • Professional development stipends.
  • Mental health resources.
  • 1:1 financial planners.
  • Fertility healthcare.
  • 100% paid parental and caregiving leave, plus cleaning service and meals during your leave.
  • Flexible WFH, both remote and in-office opportunities.
  • Fully stocked kitchen, catered lunches, and occasional in-office happy hours.
  • Employee resource groups.
Vacancy posted 15 hours ago
Similar jobs that could be interesting for youBased on the Staff Product Security Engineer in Remote vacancy
  • Role Description We're hiring a Sr Product Security Engineer to do deep, hands-on security testing across BeyondTrust's product portfolio using AI as a force multiplier. You'll use Claude, Codex, and LLM-driven workflows to build threat hunting skills, develop fuzz factory... 
    Suggested
    Full time

    BeyondTrust

    Remote
    4 days ago
  • $107.7k - $285.9k

    Role Description GitHub is transforming how the world builds secure software, and we are looking for a Product Security Engineer III to join our Product Security Engineering team. This is a hands-on engineering role focused on building internal security platforms, tooling... 
    Suggested
    Full time

    GitHub, Inc.

    Remote
    5 days ago
  • $218k - $235k

    Role Description We're seeking a Senior Product Security Engineer who is passionate about building and scaling robust security programs in an AI-forward engineering environment. Reporting to our Head of IT Operations & Information Security, you'll lead efforts to mature... 
    Suggested
    Full time
    Remote work

    Tines

    Remote
    5 days ago
  •  ...comfortable operating directly within the product development lifecycle—understanding how...  ...applying that understanding to product security decisions, acceptance criteria, and release...  .... ~Serve as advisor to product and engineering on security risk, architectural trade-... 
    Suggested
    Minimum wage
    Full time
    Local area

    Vertex Inc.

    Remote
    2 days ago
  • $140k - $175k

    Role Description We’re looking for a Senior Product Security Engineer who is passionate about partnering with engineers to assess and mitigate the security risk of our virtualization stack. You'll own the security risk posture for our virtualization stack by: ~Building... 
    Suggested
    Full time
    Local area
    Flexible hours

    DigitalOcean

    Remote
    1 day ago
  •  ...~You are a deeply technical engineer who gets restless when pipelines...  ...down. ~You care about shipping secure software! ~This is an individual-contributor Staff role, meaning technical...  ...catch issues before they reach production. ~Systematically, consistently... 
    Full time
    Remote work
    Flexible hours

    Chainguard

    Remote
    5 days ago
  • Role Description We are looking for a Product Security Engineer to join the team responsible for securing Action1’s multi-tenant SaaS product. In this role, you will work closely with engineering, product, and security teams to: ~Identify risks early ~Support vulnerability... 
    Full time
    Remote work

    Action1

    Remote
    5 days ago
  • $187k - $260k

    Role Description Join Airtable as a Product Security Engineer and play a pivotal role in shaping the security of our rapidly evolving platform as we expand our AI and LLM-powered offerings. You will join the team responsible for safeguarding the application layer of Airtable... 
    Full time

    Airtable

    Remote
    1 day ago
  • $127k - $165k

    Role Description We are seeking a Senior Product Security Engineer with medical device experience who will ensure robust protection of patient data, device integrity, and regulatory compliance. In this role, you will partner with engineering, product management, regulatory... 
    Full time
    Remote work

    iRhythm Technologies, Inc.

    Remote
    5 days ago
  • $156k - $214.5k

    Role Description At Bose, sound isn’t just a product — it’s part of how people experience the world. From music and entertainment...  ...moments that matter every day. We’re looking for a Senior Product Security Engineer to help protect the systems and services behind those... 
    Full time

    Bose Corporation

    Remote
    2 days ago
  •  ...Security Engineer At StackAI, security is at the heart of empowering companies to build AI assistants quickly and securely. We're looking...  ...security strategy, embedding best practices across engineering and product teams to safeguard data and systems. Build and Lead the... 
    Remote work

    Stack AI

    United States
    2 days ago
  •  ...Product Security Engineer Software Guidance & Assistance, Inc., (SGA), is searching for a Product Security Engineer for a contract assignment with one of our premier SaaS clients in San Jose, CA or McLean, VA. This role is open to remote in these locations. The ideal... 
    Contract work
    Remote work

    SGA

    United States
    1 day ago
  • $105.5k - $168.8k

     ...imagination and passion of all of us-from design and engineering to the manufacturing and marketing of our billions of MedTech products per year-to look at the impossible and find...  ...Description Summary: The Product Security Engineer is responsible for supporting the... 
    Hourly pay
    Work at office
    Remote work
    Shift work

    Becton , Dickinson and Company

    Irvine, CA
    15 hours ago
  • $187k - $260k

     ...Airtable to transform how work gets done. Join Airtable as a Product Security Engineer and play a pivotal role in shaping the security of our...  ..., and strategic planning for the security team. ~(Senior/Staff L5+) Lead complex threat modeling sessions for major product... 
    For contractors
    Live in
    Remote work

    Airtable

    San Francisco, CA
    5 days ago
  •  ...Product Security Engineer Software Guidance & Assistance, Inc., (SGA), is searching for a Product Security Engineer for a contract assignment with one of our premier SaaS clients in Lehi, UT. Also open to remote candidates. We are seeking a Product Security Engineer... 
    Contract work
    Remote work

    SGA

    Lehi, UT
    1 day ago
  • $144k - $191k

     ...Product Security Engineer Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century's most innovative companies... 
    Full time
    Work experience placement
    Immediate start

    Colorwave Inc

    Fort Collins, CO
    4 days ago
  • $157.25k - $198.88k

     ...Product Security Engineer USA Our healthcare system is the leading cause of personal bankruptcy in the U.S. Every year, over 50 million Americans suffer adverse financial consequences as a result of seeking care, from lower credit scores to garnished wages. The challenge... 
    Work at office
    Remote work
    Work from home
    Flexible hours

    Cedar Inc.

    United States
    15 hours ago
  • $96k - $132k

     ...job-you will find purpose and pride. Your role at Baxter At Baxter Healthcare Corporation, we invite a driven Senior Product Security Engineer who is passionate about contributing to healthcare improvements. This opportunity puts you on the frontline of cybersecurity... 
    Temporary work
    Local area
    Remote work
    Visa sponsorship
    Work visa
    Flexible hours
    Shift work

    Baxter

    Deerfield, IL
    3 days ago
  • $174.2k - $293.7k

    Role Description SailPoint’s Cybersecurity organization is seeking a Staff Product Security Engineer with a passion for cybersecurity and protecting the organization. The ideal candidate combines strong application security expertise with practical software engineering... 
    Full time
    Temporary work
    Remote work
    Flexible hours
    Shift work

    SailPoint

    Remote
    4 days ago
  • $151k - $196k

    Role Description We are seeking a Staff Product Security Engineer with proven experience in the medical device industry. In this role, you will safeguard medical devices by identifying, assessing, and mitigating security risks unique to healthcare technology. You will collaborate... 
    Full time
    Remote work
    Shift work

    iRhythm Technologies, Inc.

    Remote
    1 day ago
  • $217k - $303.9k

    Role Description Reddit is hiring a Staff Product Security Engineer to make the secure path the easiest path for engineers and AI agents. You'll lead the design and delivery of secure frameworks, paved paths, and workflow-native controls that eliminate recurring vulnerability... 
    Full time
    For contractors

    Reddit

    Remote
    15 hours ago
  • $201.3k - $352.3k

    Role Description The ServiceNow Security Organization (SSO) delivers world-class, innovative security solutions to reduce...  ...make a positive impact. ServiceNow seeks a senior staff-level product security engineer to serve as a senior technical authority within the Product... 
    Full time
    Flexible hours

    ServiceNow

    Remote
    4 days ago
  • $95k - $110k

     ...Description You’ll be responsible for helping secure PTC by providing cyber security expertise...  ...and networks. Additionally, the Security Engineer assists in the development of cyber...  ...years of experience in Application Security, Product Security, or Software Security... 
    Full time
    Work at office
    Flexible hours

    PTC

    Remote
    2 days ago
  •  ...continuously evolve a suite of internal security tools and platforms — including: ~Vulnerability...  ...The successful candidate will engineer scalable, well-tested, end-to-end web applications...  ...engineering experience building production web applications end-to-end. ~Strong... 
    Full time

    Deltek

    Remote
    15 hours ago
  • $102k - $177.1k

    Role Description Johnson & Johnson’s MedTech cybersecurity team is recruiting for an experienced Principal Product Security Engineer. The role can be remote-based or located onsite in Danvers, MA or Raritan, NJ. This role will require up to 10% travel. As the world’s... 
    Full time
    Immediate start
    Remote work

    Johnson & Johnson Innovative Medicine

    Remote
    4 days ago
  • $180k - $240k

    Role Description We are seeking a seasoned and highly accomplished Senior Staff Product Security Engineer to join our security leadership team. This is a senior individual contributor role that carries significant organizational influence. You will define the technical... 
    Full time
    Work at office
    Local area
    Remote work
    Work from home
    Flexible hours

    Greenlight Financial Technology

    Remote
    15 hours ago
  • $180k - $247k

     ...Secure Every Identity, from AI to Human Identity is the key to unlocking the potential of AI. Okta secures AI by building...  ...building a world where Identity belongs to you. The Staff Product Security Engineer Opportunity The Security team's mission is to strengthen... 
    Local area
    Remote work
    Worldwide
    Flexible hours

    Okta, Inc.

    Bellevue, WA
    4 days ago
  • $160k - $250k

    Role Description Help us protect the Security Cloud from the most advanced threats! CrowdStrike's Product Security team breaks the mold of traditional security teams...  ...to CrowdStrike's products and platform. As a Sr. Engineer II, Product Security, you will serve as a... 
    Full time
    Work at office

    CrowdStrike

    Remote
    7 days ago
  • $30 - $50 per hour

    A tech company in the United States is seeking a Product Security Engineer to embed security in the software lifecycle for AI/ML data operations. As part of this role, you will drive secure SDLC practices, lead threat modeling, and manage vulnerabilities. Experience in... 
    Remote job
    Hourly pay

    Rex.zone

    New York, NY
    4 days ago
  • $30 - $50 per hour

    Role Overview As a Product Security Engineer, you will embed security into the software lifecycle for platforms that handle AI/ML data operations. You will help secure services supporting data labeling, content safety labeling, RLHF evaluation, and model evaluation tooling... 
    Hourly pay
    Remote work

    Rex.zone

    New York, NY
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Staff Product Security Engineer. Be the first to apply!